The Hacker News Articles

Security•2026-03-10

CISA Flags SolarWinds, Ivanti, and Workspace One Vulnerabilities as Actively Exploited

CISA added three actively exploited vulnerabilities to its Known Exploited Vulnerabilities (KEV) catalog targeting SolarWinds, Ivanti, and Omnissa products.

The Hacker News

01 min read

Security•2026-03-09

Malicious npm Package Posing as OpenClaw Installer Deploys RAT, Steals macOS Credentials

A malicious npm package named @openclaw-ai/openclawai was discovered posing as an OpenClaw installer to deploy a RAT and steal sensitive macOS data, tracked as GhostClaw by JFrog.

The Hacker News

01 min read

Security•2026-03-09

UNC4899 Breached Crypto Firm After Developer AirDropped Trojanized File to Work Device

Google Cloud's H1 2026 report details how North Korean threat actor UNC4899 (also known as Jade Sleet, TraderTraitor) breached a cryptocurrency firm by chaining social engineering with cloud-native attack techniques.

The Hacker News

01 min read

Security•2026-03-09

⚡ Weekly Recap: Qualcomm 0-Day, iOS Exploit Chains, AirSnitch Attack & Vibe-Coded Malware

This weekly cybersecurity recap covers major threats, takedowns, and vulnerabilities from the week of March 9, 2026.

The Hacker News

01 min read

Security•2026-03-09

Can the Security Platform Finally Deliver for the Mid-Market?

This article promotes a Bitdefender webinar focused on whether security platforms can meet the needs of mid-market organizations with limited budgets and small IT teams.

The Hacker News

01 min read

Security•2026-03-09

Chrome Extension Turns Malicious After Ownership Transfer, Enabling Code Injection and Data Theft

This article reports on Chrome extensions that turned malicious following ownership transfers, enabling code injection, data theft, and host-level compromise.